152 Commits

Author SHA1 Message Date
Sean Dague
2f8e08b572 remove nova baremetal driver support
This has been deleted from the nova tree, we should purge it from
devstack, as it will not work any more.

Change-Id: I20501fec140998b91c9ddfd84b7b10168624430a
2014-12-05 08:31:16 -05:00
Jenkins
b103e1abd8 Merge "Add IPv6 support for tenant data network" 2014-11-20 20:09:43 +00:00
salvatore
e4e535b0bf Ensure syslog option is honored by neutron and tempest
Syslog settings were not configured at all for these two
projects. As a result, regardless of the value of the
SYSLOG environment variable, the use_syslog options for
these two projects was always set to False.

Change-Id: Iba6155d62beffa06e5bb9ac16b06082ec64d0926
Closes-Bug: #1394024
2014-11-19 01:39:00 +01:00
John Davidge
21529a50e3 Add IPv6 support for tenant data network
Define IP_VERSION with one of the three values 4, 6, or 4+6 in
your localrc to indicate if you intend to run your tenant data network
as either IPv4, IPv6, or dual stack respectively. Default value is 4.

If your IP_VERSION is set to 6 or 4+6, then the following variables
should be defined in your localrc:
  - FIXED_RANGE_V6: The IPv6 prefix for your tenant network
  - IPV6_PRIVATE_NETWORK_GATEWAY: The gateway IP with the same prefix
  - IPV6_RA_MODE (with default as slaac)
  - IPV6_ADDRESS_MODE (with default as slaac)

If you're going to use IPV6_RA_MODE/IPV6_ADDRESS_MODE settings other
than the defaults then you should make sure your VM image has dhcpv6
client enabled at bootup, otherwise you'll need to run it manually
after the VM is booted.

It's recommended to run the latest version of dnsmasq 2.68.
If you intend to enable internet access in your VM, make sure
your network node has IPv6 internet access, and the IPv6 prefix for
your tenant network is a GUA and routable.

Implements: blueprint ipv6-support
Change-Id: I848abf18e00e2a869697c5ef6366bc567dde448a
Co-Authored-By: John Davidge <jodavidg@cisco.com>
2014-11-17 05:16:07 -08:00
yunhong jiang
ae9ee6bf97 Add Ironic hardware deployment support
Currently devstack create VMs and then deploy Ironic on these VMs.
Sometimes developer may want to deploy on real platform.

A separated file is required to provide the baremetal compute node
information, which includes four fields for each hardware platform,
the ipmi address, the mac address, the ipmi user name and the
password.

Change-Id: I422b43eae6edc95f15b8c40383d0ba7fbcd9b1ff
2014-11-14 04:04:35 -07:00
Sean Dague
e08ab104e6 fix python-* lib from git installation
We're using all the magic variables based on python-fooclient, however
all the inline code was using fooclient for variables. So we had a
mismatch, which was kindly pointed out by some of the 3rd party ci
testers.

Change-Id: I27a56222c7e8e610fba8bf97672d2a42f5cf14ca
2014-11-13 17:17:38 -05:00
Jenkins
8f8e2d1fbf Merge "support installing clients at released versions" 2014-11-12 19:50:44 +00:00
Edgar Magana
7bce8fa317 Includes a validation to disable creating initial networks for Neutron
Neutron external and internal networks are created by default
This commit let developers by configuration to decide if those
networks needs to be created. This is needed to test Neutron DVR
in a distributed Multi-node environment

Change-Id: I17d891d072f189925676b4557094cde1c7a71579
Closes-Bug: 1389288
2014-11-05 11:53:30 +01:00
Jenkins
e3822cf01d Merge "Add options to enable using DHCP agent Metadata-proxy" 2014-11-04 10:08:20 +00:00
Sean Dague
5cb190697c support installing clients at released versions
expand the devstack support for libraries from released versions to
support python-* clients and tempest_lib.

Depends-On: I81b0d228e7769758c61e5b0323ecfce8c8886d39

Change-Id: I26fac0ccf8fd4818e24618d56bf04b32306f88f6
2014-11-04 10:18:58 +01:00
Tan Lin
27a196e260 Add options to enable using DHCP agent Metadata-proxy
Add options to support DHCP agent providing metadata-proxy.
In some cases, users have to disable L3 Agent. But people still
need metadata services.

Change-Id: I4664fc3a4937c3b7b5c27e74f509b683ffbedd09
2014-11-03 09:37:17 +08:00
Jenkins
3b806e3577 Merge "Desupport neutron openvswitch and linuxbridge monolithic plugins" 2014-10-31 11:23:39 +00:00
Jenkins
ca6156bc03 Merge "XenAPI: move Neutron plugin install to domU" 2014-10-31 11:23:29 +00:00
Mate Lakat
6df648920c XenAPI: move Neutron plugin install to domU
Use the same mechanism as used for nova plugin installation, thus
avoiding the need for variables in dom0. This change will also help to
move XenServer CI to neutron in the future, as the dom0 part of the
script is not executed there.

With this change, the neutron related network will always be created and
attached even if the user wants to use nova-network.

Change-Id: I8669c94e9f0aacce2990469dbabde1ff702a2769
2014-10-29 17:31:26 +01:00
YAMAMOTO Takashi
15130cd5fd Desupport neutron openvswitch and linuxbridge monolithic plugins
These plugins were removed in Juno.
Note: this doesn't affect the corresponding ML2 mechanism drivers.

Partial-Bug: #1323729
Change-Id: Ia8da1e20a03fef5657ba1584bf83ddd224b5d5f2
2014-10-28 11:55:19 +09:00
yunhong jiang
0d6e992d90 Fix a minor comments
A minor mismatch in lib/neutron since now unstack.sh invokes
three functions and also start_neutron_agents() is called before
create_neutron_initial_network().

Change-Id: Ibbe68501cce4c062a9ac610cbc44188dc9bab6c8
2014-10-27 03:41:54 -07:00
YAMAMOTO Takashi
0f18c23de8 ofagent: Support physical_interface_mappings
Also, add a knob to create a veth pair instead of a bridge
to provide host connectivity for l3-agent.  (Q_USE_PUBLIC_VETH)

Related: blueprint ofagent-physical-interface-mappings
Change-Id: I4c2538f0fd3fb05bfdb69e7e4c3a8462af42ba10
2014-10-17 01:18:40 +00:00
Jenkins
e5dbec252a Merge "Fix docs build errors" 2014-10-08 22:14:51 +00:00
Dean Troyer
3324f19f5a Fix docs build errors
Fix shocco errors during docs generation

Closes-Bug: 1362691
Change-Id: I2b7fb008c89f0b4e7280b2d0a054320765e83e47
2014-10-02 15:30:50 -05:00
Kevin Benton
08a5fcc7fa Use service role for neutron instead of admin
When creating the account for neutron to use in keystone,
give it a service role instead of an admin role so it isn't
overprivileged with the ability to create and delete tenants.
Also set the Neutron policy.json file to allow the Neutron
account to administer Neutron.

Closes-Bug: #1344463
Change-Id: I86b15cfcffe549654c28f425c2bcf99403ac10bc
2014-09-29 21:48:54 -07:00
Rob Crittenden
18d4778cf7 Configure endpoints to use SSL natively or via proxy
Configure nova, cinder, glance, swift and neutron to use SSL
on the endpoints using either SSL natively or via a TLS proxy
using stud.

To enable SSL via proxy, in local.conf add

ENABLED_SERVICES+=,tls-proxy

This will create a new test root CA, a subordinate CA and an SSL
server cert. It uses the value of hostname -f for the certificate
subject. The CA certicates are also added to the system CA bundle.

To enable SSL natively, in local.conf add:

USE_SSL=True

Native SSL by default will also use the devstack-generate root and
subordinate CA.

You can override this on a per-service basis by setting

<SERVICE>_SSL_CERT=/path/to/cert
<SERVICE>_SSL_KEY=/path/to/key
<SERVICE>_SSL_PATH=/path/to/ca

You should also set SERVICE_HOST to the FQDN of the host. This
value defaults to the host IP address.

Change-Id: I36fe56c063ca921131ad98439bd452cb135916ac
Closes-Bug: 1328226
2014-09-24 18:36:37 -04:00
Brant Knudson
0595237e8a Function for auth_token middleware config
Each project was configuring the auth_token middleware using several
lines of inisets. Since all the projects should configure the
auth_token middleware in the same way create a function and call it.

Change-Id: I3b6727d5a3bdc0ca600d8faa23bc6db32bb32260
2014-09-21 11:18:01 -05:00
Jenkins
3148d8a713 Merge "neutron: use non-deprecated notification_driver" 2014-09-18 05:49:58 +00:00
Jenkins
a1c7256946 Merge "Fix keystone auth parameter to neutron conf" 2014-09-15 16:41:45 +00:00
Jenkins
530e69712e Merge "Clean up local variable usage - Neutron" 2014-09-15 16:41:14 +00:00
JordanP
d4d4a34419 neutron: use non-deprecated notification_driver
Neutron is now using oslo.messaging so it should be
using 'messaging' as its notification driver and not the now deprecated
full python path to the oslo-incubator notification driver.

Change-Id: Ie4a4020e59473473ad62059c66507f5b73b93375
2014-09-15 09:26:53 +00:00
Jenkins
9b2c2296b9 Merge "Update parameter checking with provider network" 2014-09-13 12:38:40 +00:00
Dean Troyer
188493d50d Clean up local variable usage - Neutron
Change-Id: I3e19efd46cadcf0b4129a0f923fa7881f702d65c
2014-09-12 10:50:48 -05:00
Chris Dent
2f27a0ed3c Replace screen_it() with run_process() throughout
run_process will use screen if USE_SCREEN=True (the default),
otherwise it will simply start the requested service. Therefore
wherever screen_it used, run_process can be instead.

Where stop_screen was found it has been replaced with stop_process.

A tail_log function has been added which will tail a logfile in a
screen if USE_SCREEN is True.

lib/template has been updated to reflect the use of the new
functions.

When using sg the quoting in run_process gets very complicated.
To get around this run_process and the functions it calls accepts
an optional third argument. If set it is a group to be used with sg.

Change-Id: Ia3843818014f7c6c7526ef3aa9676bbddb8a85ca
2014-09-11 18:59:39 +01:00
Satoru Moriya
af9b2516ff Update parameter checking with provider network
Currently, devstack can't deploy OpenStack with flat provider network.

devstack checks whether SEGMENTATION_ID is provided or not when it
deploys openstack with provider network. If it is not provided devstack
prints a error message and dies.
On the other hand, devstack also gets an error from "neutron net-create"
command even if it sets SEGMENTATION_ID with flat option.

In addition to that, because neutron allows partial specs these days,
SEGMENTATION_ID checking should be removed completely.

Also, devstack uses PHYSICAL_NETWORK both as "network name" and "physical
network name" in neutron command. If it is not provided, the command fails
to create network. So devstack should check whether PHYSICAL_NETWORK is
provided.

See also:
https://blueprints.launchpad.net/neutron/+spec/provider-network-partial-specs

Change-Id: I2273e3369c688bbce1a6e39b43635b5548cc2b98
Closes-Bug: #1362382
2014-09-09 19:45:17 +09:00
Hirofumi Ichihara
469a6d8f66 Fix keystone auth parameter to neutron conf
Devstack set auth_uri to  metadata_agent.ini.
But auth_uri is wrong parameter for metadate_agent.

This is regression caused by https://review.openstack.org/#/c/94545/

Change-Id: I3dcf1d619b5d204937f072b3fbb9966069793680
Closes-bug: #1364684
2014-09-05 11:26:02 +09:00
Jenkins
464d48ab32 Merge "Update deprecated service_neutron_metadata_proxy variable" 2014-08-26 14:59:02 +00:00
Jenkins
ddcde92e90 Merge "Centralize neutron config file argument generation" 2014-08-25 21:59:50 +00:00
Jenkins
3c24a21c5b Merge "Allow to use flat providernet for public network" 2014-08-13 23:17:06 +00:00
Jenkins
629ba0630e Merge "Disable in-band control for PUBLIC_BRIDGE" 2014-08-13 21:47:25 +00:00
Gary Kotton
dd74550581 Update deprecated service_neutron_metadata_proxy variable
Commit c2697f8735a38fb05d54ff4f82110829ead85ee9 moved
service_neutron_metadata_proxy to the neutron section.

Change-Id: I08cdaae9bded1797c663d1bfeaae61535ce64099
2014-08-11 23:40:53 -07:00
Adam Gandelman
7614d21fe1 Centralize neutron config file argument generation
Moves dynamic generation of the --config-file list from local functions
to global utility functions.  This breaks up the current non-obvious
dependency between start_neutron_agents and _configure_neutron_l3_agent
for setting the correct arguments for the vpn agent.   This also similarly
updates generation of arguments for neutron-server and neutron-l3-agent to
use said functions.  Finally, this cleans lib/neutron up a bit and moves
all default paths to config files and binaries out of local functions and
into the top-level, allowing external tools like Grenade to make use of the
library for starting Neutron services and agents currently.

Change-Id: I927dafca8a2047d6c0fd3c74569ed2521f124547
Closes-bug: #1355429
2014-08-11 14:45:22 -07:00
Jenkins
4407315ae9 Merge "Support Router Advertisement Daemon (radvd) for IPv6" 2014-08-07 15:05:37 +00:00
Jenkins
a0c6d1e954 Merge "vxlan default ml2 tenant network type" 2014-08-02 02:09:52 +00:00
Robert Li
72b3e448af Support Router Advertisement Daemon (radvd) for IPv6
Install radvd if the l3 service is enabled.

Partially implements blueprint: neutron-ipv6-radvd-ra

Change-Id: I749b31dcaad072a35e5921579b50f1ca451b1383
2014-08-01 16:10:01 -04:00
YAMAMOTO Takashi
6a633fd024 Allow to use flat providernet for public network
The support of ancillary bridges (aka br-ex) is planned to be
dropped for ofagent.  This commit prepares the deprecation by
providing devstack support for an alternative way to connect
public network.

Related to blueprint ofagent-port-monitor
Change-Id: I6c2ce646070db0ed248665216071499a9b5567ab
2014-08-01 14:26:28 +09:00
YAMAMOTO Takashi
ea3dac9a3c Disable in-band control for PUBLIC_BRIDGE
By default, Open vSwitch installs internal flows for in-band control
to bridges with controller setting.  "with controller setting" part
is false for openvswitch agent but can be true for ofagent.
Unfortunately the internal flows are incompatible with our use of
the local port here to communicate with neutron router.  This commit
avoids the problem by disabling the in-band control functionality.

Related to blueprint ofagent-port-monitor
Change-Id: Ia79d12da3c2224366425be5f6927859181e18909
2014-08-01 11:33:56 +09:00
Jenkins
307cfcb9d1 Merge "neutron: set connection string in neutron.conf" 2014-07-31 11:05:07 +00:00
Jenkins
2f48395054 Merge "Use Q_PORT variable rather than hardcoded port" 2014-07-31 01:05:52 +00:00
Attila Fazekas
8feaf6c951 vxlan default ml2 tenant network type
ovs vxlan become supported on most distribution and provides
isolated `multi tenant` networking without special `vlan` aware switch.

In single node deployment you will just see the br-tun ovs bridge
created.

In multi-node setup you might need to adjust the MTU settings.

If your physical switch supports >=1550 MTU size
 probably you will not see any issue.

If your guest image honors the MTU size offered via dhcp,
you can adjust your dnsmask settings with the correct (likely 1450 byte)
MTU size.

cirros (udhcp) does not honors these setting, you might need to
set lower MTU size on br-ex and/or adjust network_device_mtu option
in your local.conf.

The default changed, because it will be used with the multi-node neutron
jobs.

If you want the original behavior for whatever reason add these to your
`local.conf`:
ENABLE_TENANT_TUNNELS=False
Q_ML2_TENANT_NETWORK_TYPE=local

Change-Id: Id33ff0eca44905b3996618f1035ad984a6819b5b
2014-07-30 11:36:44 +02:00
Ihar Hrachyshka
b816e5d2a0 neutron: set connection string in neutron.conf
it's not recommended to put the connection string in plugin specific
config file [1].

[1]:
https://github.com/openstack/neutron/blob/master/etc/neutron.conf#L534

Change-Id: I3c9d7fe3d34385185f483b509dadf7e2ba920a45
2014-07-29 13:24:48 +02:00
Christian Berendt
f6f42c6a64 Remove configuration parameter Q_DHCP_EXTRA_DEFAULT_OPTS
According to the comments in stack.sh the configuration parameter
Q_DHCP_EXTRA_DEFAULT_OPTS should be removed during the Juno cycle.

Change-Id: I3b38ff57f00e93e6d9692f516291f7129584bc74
2014-07-26 21:54:18 +02:00
Jenkins
fdcb410034 Merge "Remove configuration parameter Q_SRV_EXTRA_DEFAULT_OPTS" 2014-07-26 19:44:51 +00:00
Jenkins
368c45467b Merge "Use one name for neutron database after healing" 2014-07-26 19:38:10 +00:00
Aaron Rosen
186119c39e Use Q_PORT variable rather than hardcoded port
Change-Id: I647c6bdf14f2551bd120821a16044cec2b03b197
closes-bug: 1348834
2014-07-25 15:36:26 -07:00